[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 9 20:59:54 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ae82da4d by Salvatore Bonaccorso at 2021-12-09T21:59:25+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17429,7 +17429,7 @@ CVE-2021-39004
 CVE-2021-39003
 	RESERVED
 CVE-2021-39002 (IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-39001
 	RESERVED
 CVE-2021-39000 (IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to ob ...)
@@ -17531,7 +17531,7 @@ CVE-2021-38953
 CVE-2021-38952
 	RESERVED
 CVE-2021-38951 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-38950
 	RESERVED
 CVE-2021-38949 (IBM MQ 7.5, 8.0, 9.0 LTS, 9.1 CD, and 9.1 LTS stores user credentials  ...)
@@ -17571,7 +17571,7 @@ CVE-2021-38933
 CVE-2021-38932
 	RESERVED
 CVE-2021-38931 (IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-38930
 	RESERVED
 CVE-2021-38929
@@ -17581,7 +17581,7 @@ CVE-2021-38928
 CVE-2021-38927
 	RESERVED
 CVE-2021-38926 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-38925 (IBM Sterling B2B Integrator Standard Edition 5.2.0. 0 through 6.1.1.0  ...)
 	NOT-FOR-US: IBM
 CVE-2021-38924
@@ -40530,7 +40530,7 @@ CVE-2021-29680
 CVE-2021-29679 (IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated us ...)
 	NOT-FOR-US: IBM
 CVE-2021-29678 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-29677 (IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) is v ...)
 	NOT-FOR-US: IBM
 CVE-2021-29676 (IBM Security Verify (IBM Security Verify Privilege Vault 10.9.66) is v ...)
@@ -64549,7 +64549,7 @@ CVE-2021-20375 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow an
 CVE-2021-20374 (IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to stored cr ...)
 	NOT-FOR-US: IBM
 CVE-2021-20373 (IBM Db2 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an Inform ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2021-20372 (IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote ...)
 	NOT-FOR-US: IBM
 CVE-2021-20371 (IBM Jazz Foundation and IBM Engineering products could allow a remote  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae82da4dc16e4454df03a28c1d4cf7fa86ee5c53

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae82da4dc16e4454df03a28c1d4cf7fa86ee5c53
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211209/53d55da9/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list